$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: +o41ITOKLhIDWMYoY69LZfayzrGt43P+JNUUUeu3IAg= Subject key identifier: 4F:B2:02:B3:B7:38:6D:5A:51:0A:35:E8:EC:57:1A:92:F9:F4:70:F1 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 08F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 08F1 Signing time: Fri 22 Nov 2024 20:09:25 +0000 Manifest this update: Fri 22 Nov 2024 20:09:24 +0000 Manifest next update: Fri 29 Nov 2024 20:09:24 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: QDxRxv/QiDF/p3nhq4oeuN8PfTLiggs+v+t759eFTCc=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: S4ZaaJwKZSnUQdUJjzEBewIqlA4hqhU0xKL1nfod00M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2295 (0x8f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Nov 22 20:09:24 2024 GMT Not After : Nov 29 20:09:24 2024 GMT Subject: CN=6740e4f4-790a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:80:77:86:16:d7:57:96:7d:ca:b7:96:52:00: cd:e4:fe:49:ab:e3:87:d1:eb:40:6b:f6:3d:41:64: f5:30:d0:45:0b:b5:e1:84:2a:30:67:da:8e:f2:de: 8f:62:4b:d6:9b:78:01:8c:88:f2:76:85:5b:5e:a2: ce:ee:77:85:3f:f6:16:a5:a2:c5:33:fd:7f:e4:d4: 5b:36:ae:5e:5b:21:47:43:19:0e:de:7f:a8:8d:04: 0d:b1:2d:a3:48:05:3c:09:6e:52:7f:b9:ff:5f:56: 51:15:b0:cd:0b:0f:e6:f5:22:d8:62:96:00:45:2c: 41:1a:57:f2:da:e7:ff:71:d6:0c:d9:ae:c6:09:4b: c3:72:87:db:e4:0b:ef:27:7b:14:71:b9:a3:0f:f7: 53:2f:0d:cd:05:80:62:f2:79:d3:61:5c:51:51:3e: 9b:ba:0d:a5:d2:09:70:f2:c6:c3:59:7a:31:c3:fb: 59:8c:d2:96:0b:00:14:72:f6:8a:23:93:55:99:65: 5c:bb:cd:8a:ed:f1:0e:f4:3c:42:06:75:b1:23:b4: 27:ec:a7:f2:4d:20:92:5d:40:05:ae:dd:a8:a4:dd: b2:a0:55:7b:99:70:92:56:51:47:ea:df:af:92:45: 58:1b:45:3b:d8:47:6a:e3:97:9d:f4:ae:78:06:0a: 68:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B2:02:B3:B7:38:6D:5A:51:0A:35:E8:EC:57:1A:92:F9:F4:70:F1 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:6f:fc:41:37:c5:c8:bf:b7:6f:eb:0d:1c:a7:a2:6b:ae:65: 5b:6a:6a:ff:0e:ae:e9:9f:92:f1:82:bf:b3:29:9b:ce:54:40: ab:de:11:51:74:01:4c:93:c0:1e:90:c5:14:5a:25:ad:8f:4b: 10:3d:86:34:7d:8d:43:ac:75:3b:2e:e5:72:5c:b6:c9:66:1e: 3c:17:20:c9:42:65:2f:1f:11:09:4e:be:4d:7f:ee:13:62:0e: 1e:de:09:a8:42:d0:35:03:a9:0f:50:ac:18:4e:20:52:2e:49: 84:e1:fb:18:fe:cf:34:a9:48:5d:44:a0:40:36:19:f7:7d:67: eb:c2:91:5a:ca:e1:30:9d:01:20:01:6c:56:e2:fa:f3:24:29: dd:26:24:ab:f8:5b:11:68:63:6e:37:99:e5:fc:2e:26:2e:2b: 79:9e:86:80:13:0e:3e:6f:53:ec:2c:63:c9:d6:1e:77:1d:43: 87:81:61:b0:35:ce:c6:a6:dc:14:f7:4f:4e:0a:57:82:75:7b: af:34:a0:dd:97:8a:20:05:7c:a1:36:bc:cd:9c:ca:bb:04:3c: 0b:29:73:39:05:b6:2c:e3:11:5b:32:50:91:2e:4d:d2:bb:00: 05:fd:dd:53:66:64:33:63:49:ed:5b:ef:96:04:1d:82:41:76: f8:c2:29:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjQxMTIyMjAwOTI0WhcNMjQxMTI5MjAwOTI0WjAYMRYwFAYD VQQDEw02NzQwZTRmNC03OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroB3hhbXV5Z9yreWUgDN5P5Jq+OH0etAa/Y9QWT1MNBFC7XhhCowZ9qO8t6P YkvWm3gBjIjydoVbXqLO7neFP/YWpaLFM/1/5NRbNq5eWyFHQxkO3n+ojQQNsS2j SAU8CW5Sf7n/X1ZRFbDNCw/m9SLYYpYARSxBGlfy2uf/cdYM2a7GCUvDcofb5Avv J3sUcbmjD/dTLw3NBYBi8nnTYVxRUT6bug2l0glw8sbDWXoxw/tZjNKWCwAUcvaK I5NVmWVcu82K7fEO9DxCBnWxI7Qn7KfyTSCSXUAFrt2opN2yoFV7mXCSVlFH6t+v kkVYG0U72Edq45ed9K54BgpolwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+yArO3 OG1aUQo16OxXGpL59HDxMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTb/xBN8XIv7dv6w0cp6JrrmVbamr/Dq7pn5Lxgr+zKZvOVECr3hFR dAFMk8AekMUUWiWtj0sQPYY0fY1DrHU7LuVyXLbJZh48FyDJQmUvHxEJTr5Nf+4T Yg4e3gmoQtA1A6kPUKwYTiBSLkmE4fsY/s80qUhdRKBANhn3fWfrwpFayuEwnQEg AWxW4vrzJCndJiSr+FsRaGNuN5nl/C4mLit5noaAEw4+b1PsLGPJ1h53HUOHgWGw Nc7GptwU909OCleCdXuvNKDdl4ogBXyhNrzNnMq7BDwLKXM5BbYs4xFbMlCRLk3S uwAF/d1TZmQzY0ntW++WBB2CQXb4wim4 -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org